Create pki enrollmentrequest, Create an enrollment request using create pki – Allied Telesis AT-S60 User Manual

Chapter 23: PKI Commands

254

CREATE PKI ENROLLMENTREQUEST

Syntax

create pki enrollmentrequest=request-name
keypair=key-id [format=der|pem] [type=pkcs10]

Parameters

enrollmentrequest A character string, 1 to 8 characters in length. Valid

characters are any printable characters. If the name
contains spaces, it must be enclosed in double
quotes. Wildcards are not accepted.

keypair

A decimal number in the range 0 to 65535. There is

no default.

format

Specifies the type of encoding the certificate will
use. Possible settings are:

der

Specifies binary format which
cannot be displayed in a text editor.
This is the default.

pem

Specifies an ASCII-encoded format
that allows the certificate to be
displayed in a text editor once it is
generated.

type

Formats the request according to PKCS #10.

Description

This command creates a certificate enrollment request. This operation is
required when you first create a new key pair and want to get it signed
by a CA. The enrollment request must be transmitted to the CA
manually. Usually, this is done through email.

The ENROLLMENTREQUEST parameter specifies a name of the
enrollment request. This value is used to create the requested file in the
format “filename.csr.” This is a file that has to be taken out of the file
system with the UPLOAD command and manually sent to the CA. See
UPLOAD on page 134.

The KEYPAIR parameter specifies the encryption key of the certificate.
This value must be defined with the CREATE ENCO KEY command. See
CREATE ENCO KEY on page 243.